CVE-2026-33432CRITICAL 9.1EPSS p33.7%

CVE-2026-33432CVE-2026-33432

Description

Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions up to and including 8.2.8.2, when LDAP authentication is enabled, Roxy-WI constructs an LDAP search filter by directly concatenating the user-supplied login username into the filter string without escaping LDAP special characters. An unauthenticated attacker can inject LDAP filter metacharacters into the username field to manipulate the search query, cause the directory to return an unintended user entry, and bypass authentication entirely — gaining access to the application without knowing any valid password. As of time of publication, no known patches are available.

Scoring

CVSS 3.19.1 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
EPSS0.42% probability of exploitation · percentile 33.7% · 2026-06-19T12:03:05Z
Published2026-04-20
Last modified2026-04-24

Underlying weaknesses· 1

CWE-287

References

  1. https://github.com/roxy-wi/roxy-wi/blob/v8.2.8.2/app/modules/roxywi/auth.py
  2. https://github.com/roxy-wi/roxy-wi/security/advisories/GHSA-hv3x-4w38-r92m
  3. https://github.com/roxy-wi/roxy-wi/security/advisories/GHSA-hv3x-4w38-r92m

1

TypeTargetConfidenceTier
WeaknessImproper Authenticationcwe-2870%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-45559
CVE
CVE-2026-33078
CVE
CVE-2026-33208
CVE
CVE-2026-45567
CVE
CVE-2026-27811
CVE
CVE-2026-45566
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.